Cybercriminals Leak Millions of Records in “Free Leakmas” Campaign During the Holiday Season

The holiday season is usually a time of joy and celebration, but for cybercriminals, it presented an opportunity to carry out their nefarious activities. In the days leading up to Christmas, a staggering 50 million records containing sensitive personal information were leaked by these threat actors. These leaks, primarily found on the Dark Web, were labeled “Free Leaksmas,” indicating that the criminals were sharing their data as a gesture of mutual gratitude among their ilk.

“Free Leaksmas” campaign on the Dark Web

The Dark Web served as the platform for cybercriminals to exchange and share compromised data during the holiday season. The “Free Leaksmas” campaign demonstrated a peculiar form of camaraderie among these threat actors. It is believed that by sharing their stolen data, they were expressing gratitude towards one another and establishing an environment of trust within their criminal network. As part of the campaign, underground shops offering compromised accounts on online banking and ecommerce platforms even provided substantial discounts, with markdowns reaching up to 40%.

Data dumps from various breaches

Several major data breaches contributed to the “Free Leaksmas” campaign, resulting in significant record leaks. One of the most prominent dumps came from a breach at Peruvian telecom provider Movistar, where a staggering 22 million records containing customer phone numbers and identification numbers were compromised. This breach is concerning as it exposes a vast amount of personal information that could potentially be exploited for various malicious purposes.

In addition to the Movistar breach, other notable Leaksmas datasets emerged from breaches at a Vietnamese fashion retailer and a French company. Both of these breaches yielded millions of records, further fueling concerns about the extent of personal data available to cybercriminals.

Revisiting older incidents

Interestingly, some of the leaked data appeared to originate from older incidents that had resurfaced. One such incident was the rumored breach of the Swedish fintech company Klarna in 2022. It is clear that cybercriminals are not only focused on recent breaches but also revisiting past incidents to exploit any remaining vulnerabilities and retrieve valuable data.

Notable threat actors involved

Several known threat actor groups have been identified as participating in the “Free Leaksmas” campaign. One such group is SeigedSec, a pro-Iranian entity that has previously targeted critical infrastructure and industrial control systems environments in Israel. Their involvement in sharing compromised data during the holiday break raises concerns over potential future attacks on critical systems.

Another group involved in the Leaksmas campaign is the hacktivist alliance known as the “Five Families.” This group claimed responsibility for stealing records from a large Chinese clothing store due to its alleged abusive labor practices and government connections. The motivations behind their actions highlight the intersection between cybercrime and activism.

Discounts and Focus on Stolen Credit Card Data

As digital identity remains a primary focus for cybercriminals, those selling stolen credit card data and related services offer attractive discounts to entice new buyers. Cybercriminals recognize the lucrative nature of stolen credit card information and the potential for financial gain. By offering discounts, they seek to expand their customer base and increase the demand for stolen data.

The “Free Leaksmas” campaign conducted by cybercriminals during the holiday season resulted in a massive influx of leaked personal data. The collaboration and data sharing observed among these threat actors signifies the existence of a robust criminal network. With notable threat actors and the abundance of compromised accounts and credit card information, the importance of data security cannot be stressed enough. As we move forward, it is crucial for individuals and organizations to remain vigilant and implement robust cybersecurity measures to protect against such breaches and safeguard sensitive information.

Explore more

Trend Analysis: Shadow IT and Generative AI

In the midst of a rapidly evolving digital landscape, the rise of shadow IT coupled with the advent of generative AI presents a formidable challenge for modern organizations. Shadow IT involves the use of unapproved technologies within a company, while generative AI encompasses a new breed of intelligent tools capable of generating content, making predictions, and performing tasks previously reserved

Trend Analysis: AI-Powered Customer Data Platforms

In an era where consumer expectations continue to evolve at an unprecedented pace, businesses strive to adapt through innovative technologies. One such advancement gaining momentum involves AI-powered customer data platforms. These platforms have emerged as pivotal tools in helping businesses efficiently manage and leverage their customer data. This article explores the growth, applications, and future of these transformative platforms, supported

Alibaba Cloud Invests $60M to Expand Global AI Partnerships

Dominic Jainy, a distinguished expert in artificial intelligence and blockchain, joins us to discuss Alibaba Cloud’s ambitious investment in AI partnerships. With a new strategy aiming to foster global collaboration and innovation, this move marks a significant step in reshaping the landscape of cloud and AI technologies. Dominic offers insights into how these partnerships could transform various industries and enhance

How Can Leaders Boost LGBTQ+ Inclusion Beyond Pride Month?

While rainbow flags flutter vibrantly during Pride Month, the question of what happens once the celebrations end is crucial. Many might assume that the growing visibility of LGBTQ+ rights translates to year-round support. However, numerous individuals from this community still feel unsupported outside June’s vibrant displays. Imagine companies evolving into inclusive sanctuaries all year round—not just during Pride Month. The

AI Cloud Security Risks – Review

The rapid integration of artificial intelligence into cloud environments marks a substantial shift in technological advancement, but it also introduces significant security risks. A recent study reveals that 70% of AI workloads on major cloud platforms have unremediated critical vulnerabilities. This prevalence starkly contrasts with 50% in non-AI workloads, underlining the heightened security threats alongside technological adoption. Large datasets and